A threat actor’s repeated use of DLL-hijack execution flow makes for interesting attack results, including omnivorous file ingestion; we break down five cases and find commonalities Contact us today for […]
Continue Reading-
Sophos X-Ops finds Attackers Using Covert Channels in Backdoor Against Devices
Newly discovered attack combines custom and commodity malware Contact us today for more information about SOPHOS cyber security solutions
Continue Reading -
Are threat actors turning to archives and disk images as macro usage dwindles?
Following Microsoft’s announcement that macros from the internet will be disabled by default, threat actors are using alternative file types for malware delivery. This shift brings both challenges and opportunities […]
Continue Reading -
You can’t always get what you want on Patch Tuesday
No joy for Exchange admins looking to seal off two widely reported Server vulns Contact us today for more information about SOPHOS cyber security solutions
Continue Reading -
Remove All The Callbacks – BlackByte Ransomware Disables EDR Via RTCore64.sys Abuse
A fresh exploration of the malware uncovers a new tactic for bypassing security products by abusing a known driver vulnerability Contact us today for more information about SOPHOS cyber security […]
Continue Reading -
Two Exchange Server vulns veer dangerously close to ProxyShell
A chained pair of vulnerabilities, plus PowerShell, affects the Microsoft messaging platform well in advance of Patch Tuesday; Sophos customers are protected Contact us today for more information about SOPHOS […]
Continue Reading -
A lighter Patch Tuesday, but one heavy with remote code execution bugs
There are fewer bugs in September’s update than in previous months, with RCE vulns making up the bulk of the addressed CVEs Contact us today for more information about SOPHOS […]
Continue Reading -
Cookie stealing: the new perimeter bypass
As organizations move to cloud services and multifactor authentication, cookies tied to identity and authentication give attackers a new path to compromise. Contact us today for more information about SOPHOS […]
Continue Reading -
Microsoft squares away 121-CVE Patch Tuesday for August
Another tough month for Azure admins; meanwhile, Windows takes a long road to a Dogwalk Contact us today for more information about SOPHOS cyber security solutions
Continue Reading -
Multiple attackers increase pressure on victims, complicate incident response
Sophos’ latest Active Adversary report explores the issue of organizations being hit multiple times by attackers Contact us today for more information about SOPHOS cyber security solutions
Continue Reading -
Genesis Brings Polish to Stolen-Credential Marketplaces
Four years on, Genesis Marketplace remains the go-to underground market for easy access to other people’s data Contact us today for more information about SOPHOS cyber security solutions
Continue Reading -
Behind the Research: The Making of “OODA: X-Ops Takes on Burgeoning SQL Server Attacks”
Today, we released new Sophos research into a series of Microsoft SQL Server attacks. We also released a new piece outlining our vision of how security operations can and will […]
Continue Reading -
OODA: X-Ops Takes On Burgeoning SQL Server Attacks
How do the pieces of Sophos X-Ops fit together? A combined effort makes tidy work of a threat actor’s big play Contact us today for more information about SOPHOS cyber […]
Continue Reading -
Sophos X-Ops FAQ
What exactly is Sophos X-Ops? Sophos X-Ops is a new, cross-operational (X-Ops) team linking SophosLabs, Sophos SecOps and Sophos AI, three established teams of cybersecurity experts at Sophos, to help […]
Continue Reading -
BlackCat ransomware attacks not merely a byproduct of bad luck
Older hardware and outdated operating systems contribute to attacks Contact us today for more information about SOPHOS cyber security solutions
Continue Reading -
July Patch Tuesday is Rich in Azure, Windows Issues
Windows-facing issues make up the bulk of the 85 CVEs addressed, with one vulnerability under active exploit in the wild Contact us today for more information about SOPHOS cyber security […]
Continue Reading
You must be logged in to post a comment.